1st International ICST Conference on Communication System Software and MiddleWare

Research Article

Using the Liberty Alliance Architecture to Secure IP-level Handovers

  • @INPROCEEDINGS{10.1109/COMSWA.2006.1665154,
        author={Govindarajan  Krishnamurthi and Tat-Keung  Chan},
        title={Using the Liberty Alliance Architecture to Secure IP-level Handovers},
        proceedings={1st International ICST Conference on Communication System Software and MiddleWare},
        publisher={IEEE},
        proceedings_a={COMSWARE},
        year={2006},
        month={8},
        keywords={},
        doi={10.1109/COMSWA.2006.1665154}
    }
    
  • Govindarajan Krishnamurthi
    Tat-Keung Chan
    Year: 2006
    Using the Liberty Alliance Architecture to Secure IP-level Handovers
    COMSWARE
    IEEE
    DOI: 10.1109/COMSWA.2006.1665154
Govindarajan Krishnamurthi1,2,3,4,*, Tat-Keung Chan1,2,3,*
  • 1: Nokia Research Center
  • 2: 12278 Scripps Summit Drive
  • 3: San Diego, CA 92131
  • 4: USA
*Contact email: govind.krishnamurthi@nokia.com, tat.chan@nokia.com

Abstract

This paper presents a novel authentication and authorization architecture for mobile terminals while performing an IP-level handover. The proposed architecture is based on the liberty alliance single sign-on architectural framework. Using the foundation provided by this architecture, we also present a protocol to enable these security functions during the handover process. Later, we present the results of a performance comparison of the proposed protocol against the current specified mechanism for 3 GPP2-WLAN interworking. We then perform a detailed threat analysis to show that the proposed solution is secure. The solution proposed in this paper is a scalable practical solution to authenticate and authorize handovers in future generation mobile networks, leveraging on the liberty alliance architecture that operator may have deployed for authenticating service requests within a Liberty Federation